iptables/netfilter and syslog-ng
I'm having trouble with iptables (Linux kernel 2.4.x) logging with syslog-ng. sysklogd is logging as expected. As far as I can see, a syslog-ng config like this is logging everything except iptables: source src { unix-stream("/dev/log"); internal(); }; destination testing { file("/root/testing"); }; log { source(src); destination(testing); }; I've tried syslog levels 0-7 with iptables, but syslog-ng still doesn't show the traffic. Anyone have an idea of I'm doing wrong? -- ljlane@nontoxic.org
I've looked further into the problem. I'm getting no traffic from the kernel facility, even with an explicit facility(kern) filter. On Fri, Jan 26, 2001 at 10:29:44PM -0500, Laurence J. Lane wrote:
Date: Fri, 26 Jan 2001 22:29:44 -0500 From: "Laurence J. Lane" <ljlane@nontoxic.org> To: syslog-ng@lists.balabit.hu Subject: [syslog-ng]iptables/netfilter and syslog-ng
I'm having trouble with iptables (Linux kernel 2.4.x) logging with syslog-ng. sysklogd is logging as expected. As far as I can see, a syslog-ng config like this is logging everything except iptables:
source src { unix-stream("/dev/log"); internal(); }; destination testing { file("/root/testing"); }; log { source(src); destination(testing); };
I've tried syslog levels 0-7 with iptables, but syslog-ng still doesn't show the traffic.
Anyone have an idea of I'm doing wrong?
participants (1)
-
Laurence J. Lane